-
https://github.com/MobSF/Mobile-Security-Framework-MobSF/
@eddynaka @yongyan-gh @shaopeng-gh
Feasible? Useful?
-
### User Story
as an oscal developer, to build tools around validation and automation, it important that the sarif output contains ID's for all constraints
### Goals
all constraints in oscal …
-
Reported in: https://github.com/github/codeql-action/issues/390#issuecomment-786543363
`reports/a.sarif`:
```
{
"$schema": "https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schema…
-
### 🐛 Describe the bug
I am trying to use `torch.onnx.dynamo_export` to export my segmentation model to onnx.
```
exported_model=SemsegSamExportModel(model)
torch.onnx.dynamo_export(
…
-
**Is your feature request related to a problem? Please describe.**
SARIF output does not include metadata. This makes it hard to extract information from it in an automated way, such as which CWE a r…
-
I use API like this in my vscode extension:
```typescript
export async function openSarifViewerPannel(filePath: string) {
const sarifExt = extensions.getExtension('MS-SarifVSCode.sarif-viewer');
…
mzyKi updated
2 months ago
-
**Describe the bug**
When exporting findings to SARIF format, the field "fix" is not dumped into the report. (In the case of JSON format, it is correctly dumped).
**To Reproduce**
You can execute…
-
### 🐛 Describe the bug
I got an ```OnnxExporterError``` trying to export a PyTorch model using ```dynamo_export```. See below:
```
Traceback (most recent call last):
File "/Users/albasaco/Deskto…
-
## Expected Behavior
SARIF report should only include active rules
https://docs.oasis-open.org/sarif/sarif/v2.1.0/sarif-v2.1.0.html#_Ref3899090
## Observed Behavior
SARIF report does not include…
-
Run rsdmike/github-security-report-action@v3.0.4
with:
token: ***
sarifReportDir: ../results
outputDir: /home/deploy/actions-runner/xxxx
repository: xx/xxx
template: summar…